Monday, February 10, 2014




Complete DHS Report for February 10, 2014

Daily Report

 • A CSX freight train that derailed during an ice storm in Molino, Florida, spilled 24,000 - 30,000 gallons of phosphoric acid into Fletcher Creek, which feeds into the Escambia River. – Pensacola News Journal

4. February 6, Pensacola News Journal – (Florida) EPA cleaning up extensive acid spill in northern Escambia County. The Florida State Department of Environmental Protection announced that a CSX freight train derailed during an ice storm in Molino January 28 and spilled between 24,000 and 30,000 gallons of phosphoric acid into Fletcher Creek, which feeds into the Escambia River. Crews removed the derailed cars and the acid was being contained and neutralized on site before being transported to a wastewater treatment plant for treatment. Source: http://www.pnj.com/article/20140206/NEWS01/140206011/EPA-cleaning-up-extensive-acid-spill-northern-Escambia-County

 • Fazio Mechanical Services confirmed that attackers used a data connection with Target used for billing, project management, and contract submission to breach Target’s systems and steal large amounts of customer payment information. – Softpedia See item 9 below in the Financial Services Sector

 • A former portfolio manager for SAC Capital Advisors was found guilty of running the most lucrative insider trading scheme ever, using nonpublic information to make profits and avoid losses totaling $275 million. – Washington Post See item 10 below in the Financial Services Sector

 • The Mohonk Mountain House in New Paltz, New York, temporarily closed in order to undergo a thorough cleaning and sanitizing of the resort, after hundreds of guests and employees were sickened by a virus. – WABC 7 New York City

31. February 7, WABC 7 New York City – (New York) Virus temporarily closes Mohonk Mountain House. The Mohonk Mountain House in New Paltz closed February 7 and will reopen February 14 in order to undergo a thorough cleaning and sanitizing of the resort, after hundreds of guests and employees were sickened by a virus. Source:http://abclocal.go.com/wabc/story?section=news/local/northern_suburbs&id=9422693

Details
Financial Services Sector
9. February 7, Softpedia – (National) HVAC company makes statement on Target data breach. Fazio Mechanical Services confirmed that attackers used a data connection with Target used for billing, project management, and contract submission to breach Target’s systems and steal large amounts of customer payment information. Source: http://news.softpedia.com/news/HVAC-Company-Makes-Statement-on-Target-Data-Breach-424941.shtml

10. February 6, Washington Post – (New York) SAC portfolio manager found guilty of insider trading. A former portfolio manager for SAC Capital Advisors was found guilty February 6 of running the most lucrative insider trading scheme ever, using nonpublic information on pharmaceutical trials to make profits and avoid losses totaling $275 million. Source: http://www.washingtonpost.com/business/economy/sacs-martoma-found-guilty-of-insider-trading/2014/02/06/63e4d020-8f4d-11e3-b227-12a45d109e03_story.html

11. February 6, New York Times – (New York) Ex-brokerage executives charged with fraud. The owner and two executives of the now-defunct WJB Capital Group were arrested February 6 and charged for allegedly running an investment fraud scheme that defrauded at least 15 investors of over $11 million. Source: http://dealbook.nytimes.com/2014/02/06/ex-brokerage-executives-charged-with-fraud/

12. February 6, The Press of Atlantic City – (New Jersey) Alabama man admits role in mortgage scam involving Wildwoods properties, attempted murder. An Alabama man pleaded guilty to fraud and money laundering charges for his role in a $15 million fraud scheme involving properties in Wildwood Crest and North Wildwood, New Jersey. The man also pleaded guilty to attempting to murder a straw buyer who was part of the scheme. Source: http://www.pressofatlanticcity.com/communities/lower_capemay/alabama-man-admits-role-in-mortgage-scam-involving-wildwoods-properties/article_c8756e1a-8f83-11e3-9b08-001a4bcf887a.html

For another story, see item 28 below  in the Information Technology Sector

Information Technology Sector

28. February 7, Softpedia – (International) Cybercriminals hijack router DNS settings to lure users to fake banking websites. Researchers at Poland’s Computer Emergency Response Team (CERT Polska) identified an attack that uses vulnerabilities in home routers to redirect users to fake banking Web sites. The attack hijacks DNS settings and then redirects users to malicious Web sites that mimic legitimate banking sites. Source: http://news.softpedia.com/news/Cybercriminals-Hijack-Router-DNS-Settings-to-Lure-Users-to-Fake-Banking-Websites-424920.shtml

29. February 7, Help Net Security – (International) Facebook bug prevents revocation of app permissions. Developers at software vendor MyPermissions identified a vulnerability in Facebook’s mobile app that can be exploited to make it impossible for users to revoke permissions given to Facebook apps. The vulnerability was reported to Facebook and a solution is being developed. Source: http://www.net-security.org/secworld.php?id=16331

For another story, see item 9 above in the Financial Services Sector

Communications Sector

30. February 6, Paxton Record – (Illinois) Conxxus phone outage may continue through Saturday. Nearly 500 Conxxus customers in Paxton, Illinois, were without landline service starting February 4 due to a heavy snow storm that damaged the company’s main and backup equipment. The utility worked to restore service by February 8. Source: http://www.paxtonrecord.net/news/technology/2014-02-06/conxxus-phone-outage-may-continue-through-saturday.html